Question

In: Computer Science

The NoSQL movement continues to grow to meet the Big Data storage needs of companies such...

The NoSQL movement continues to grow to meet the Big Data storage needs of companies such as Amazon.com, Facebook, and Google. What are the unique security issues associated with these non-relational, structured storage DBMSs? Using our online Library system, summarize the finding of a reputable article’s information regarding the unique security issues with NoSQL databases.

Solutions

Expert Solution

# Security issues with NoSQL databases :

@ The administrative user / authentication is not enabled by default ,unlike relational database management system it is a major drawback :

In NoSQL , data files are never encrypted by default. If encryption is required for the data file, In that case application layer needs to encrypt the data before sending it to the database server .

@ In NoSQL databases client communicates with server via plaintext(MongoDB) .

By default it  does not support SSL client-node communication, which leads to security breach in the Network.

@ NoSQL databases has a very weak password storage :

when sensitive data is being stored in NoSQL databases, security issues become a major concerns, transmit the password as plain-text, even if it is kept as ,No SQL  lacks of encryption support for the data files .

@ In NoSQL databases we Cannot use external encryption tools like LDAP, Kerberos etc :

NoSQL databases is based on  distributed computing also it cannot use external encryption tools like. LDAP etc.

@ NoSQL Lack of encryption support for the data files :

NoSQL databases are very weak, authentication and Encryption in NoSQL is almost nonexistence or is very weak when implemented .

@ NoSQL has weak authentication both between client and the servers :

Servers and clients are connected by very weak plain text standard and uses secure protocol(s) to create tunnels between servers and clients for communication.

@ In NoSQL databases there is a vulnerability to SQL injection:

NoSQL databases for example " MongoDB" don't use SQL for queries, they still do queries which are based upon user input. This means that they are still very much vulnerable to injection attacks if the developer does not properly perform input sanitization .

@ Denial of service attacks are possible in NoSQL databases :

The new query could trigger a Denial of Service. (DoS) attack and cause NoSQL databases like "MongoDB" instance to execute at 100% CPU usage for 10 seconds , which is very harmfull.

@ In NoSQL available encryption solution isn’t production ready :

In NoSQL passwords in databases are encrypted by using MD5 or PBKDF2 algorithms which  isn't secure enough.

@ In NoSQL encryption isn’t available for client communication:

Encryption is not  available for client communication. still all this security problems, it best to consider that NoSQL databases are still new in the market .


Related Solutions

Can you explain to me what Big Data Storage and Cloud Data Storage is? And what...
Can you explain to me what Big Data Storage and Cloud Data Storage is? And what are the relationships between these two storages? Lastly, How these two storages impact business and their strategic business decisions?
In case of big data there is a need of new data architecture, new storage approaches,...
In case of big data there is a need of new data architecture, new storage approaches, new tools, new analytics methods and technique. Select one: a. True b. False 2- The Shopping Mall wants to group the products based on the data about their similar features, which of the following data mining approaches can be applied Select one: a. Association b. Regression c. Clustering d. Classificiation 3- A Excell spreedshed containing id number, names and marks of the student is...
Consider how data is gathered as our online presence continues to grow. What impact, if any,...
Consider how data is gathered as our online presence continues to grow. What impact, if any, does this have on your online habits? Do you feel the idea of privacy online is slowly disappearing? Provide examples.
As an HIM compliance officer , Ensure the standardization of data dictionaries to meet the needs...
As an HIM compliance officer , Ensure the standardization of data dictionaries to meet the needs of the enterprise. Demonstrate applicable clinical data standards theory and development. Ensure data are in a format that will satisfy data integration needs: Interoperability Decision support Legacy systems Describe clinical data and clinical process modeling: UML-Unified Modeling Language UP-Unified Process
QUESTION 16 Big Data- the data acquired by companies and government is used for which of...
QUESTION 16 Big Data- the data acquired by companies and government is used for which of the following: 1. Developing a marketing strategy 2. Identify new product opportunities 3. Positioning products 4. Big data is used for all of the above 1 points    QUESTION 17 In recent years, data analytics has been a popular major. Recent graduates have found that: 1. Jobs for recent graduates are readily available and wages are high due to the talent gap 2. Jobs...
Read the article, “Big Data in Big Companies” (written by Thomas Davenport and Jill Dyche) from...
Read the article, “Big Data in Big Companies” (written by Thomas Davenport and Jill Dyche) from the International Institute from Analytics. Comment on the role of business analytics in business today. ( Answer Needs to be at least 150 words)
Big Data is increasingly important to companies and accountants. Using a web search on Google or...
Big Data is increasingly important to companies and accountants. Using a web search on Google or other search sites, find an article within the last 12 months on “Big Data” and accounting. Summarize how the article describes the use of Big Data in an accounting context.
How do each the following three companies use big data and predictive analytics in their own...
How do each the following three companies use big data and predictive analytics in their own way. recent data 2019-2020 Nike Adidas and Under Armour
ADVERTISEMENT
ADVERTISEMENT
ADVERTISEMENT